CVE-2026-34511 Blast Radius

MEDIUM • CVSS 5.3OpenClaw before 2026.4.2 reuses the PKCE verifier as the OAuth state parameter in the Gemini OAuth flow, exposing it through the redirect URL. Attacke

Is Your Infrastructure Using These Packages?

EchelonGraph automatically scans your cloud infrastructure and SBOMs to map your exposure to vulnerabilities like CVE-2026-34511.

Start Free Scan →← Back to CVE-2026-34511